iangcarroll / cookiemonsterLinks
πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
β904Updated 6 months ago
Alternatives and similar repositories for cookiemonster
Users that are interested in cookiemonster are comparing it to the libraries listed below
Sorting:
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,597Updated last year
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applicationsβ1,143Updated last week
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β983Updated last year
- bypass-url-parserβ1,081Updated last week
- Go client to communicate with Chaos DB API.β747Updated last week
- Tool to check for dependency confusion vulnerabilities in multiple package management systemsβ739Updated 11 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β878Updated last year
- Obtain GraphQL API schema even if the introspection is disabledβ1,253Updated 10 months ago
- Scrape domain names from SSL certificates of arbitrary hostsβ657Updated last year
- The most exhaustive list of reliable DNS resolvers.β815Updated this week
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β996Updated this week
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β993Updated 2 weeks ago
- Accept URLs on stdin, replace all query string values with a user-supplied valueβ831Updated 2 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β661Updated last year
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β743Updated 3 years ago
- Unleash the power of cloudβ781Updated 8 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devicesβ630Updated last month
- β391Updated 3 years ago
- An IIS short filename enumeration toolβ986Updated 8 months ago
- Free, libre, effective, and data-driven wordlists for all!β620Updated 3 years ago
- a javascript change monitoring tool for bugbountiesβ655Updated last year
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.β1,196Updated last year
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given targetβ1,368Updated 2 months ago
- β478Updated 6 months ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,460Updated this week
- declutters url lists for crawling/pentestingβ1,409Updated 5 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β387Updated 3 years ago
- A wordlist of API names for web application assessmentsβ834Updated last month
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ882Updated 3 years ago
- Content-Type Researchβ627Updated last month